Forums

Am I open to attack?

So I’ve just updated all of the web forms on my website with recaptcha to stop potential spam attacks, but there’s still the one little form on my homepage (Email newsletter submission) that has no kind of captcha attached to it.

Does this form make my website open to attack in any way? It’s only a basic form, 1 field (Email) and a submit button, and then it sends this information to a .txt file in my directories.

I’d agree with that, but it doesn’t mean small websites don’t get hacked all the time… they do.

But on another note:

Captcha’s don’t do anything against "attack" as much as they "prevent spam."

If you have a database driven website (like wordpress, etc.), an "attack" could try to change the content in your database.
If you don’t have a database driven website, there’s not much to attack, except maybe trying to get in via ftp, or editing 777 files…

yea gotta agree with everyone… if you put your site up on the interwebs, you are pretty much open for attack… there are always new ways around things. The thing you have to think of is how many people will actually care about little old you…

Tips

Categories

We have a pretty good* newsletter.

Email Address

CSS-Tricks* is created, written by, and maintained by Chris Coyier and a team of swell people. It is built on WordPress, hosted by Media Temple, and the assets are served by MaxCDN. The fonts are Source Sans Pro and Source Code Pro. It is made possible through sponsorships from products and services we like.